Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2018-05-22	CVE-2018-3639	Information Exposure Through Discrepancy vulnerability in multiple products Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4. local low complexity intel arm redhat debian canonical siemens oracle mitel sonicwall schneider-electric nvidia microsoft CWE-203	5.5
2018-05-21	CVE-2018-1108	Use of Insufficiently Random Values vulnerability in multiple products kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. network high complexity linux canonical debian CWE-330	5.9
2018-05-18	CVE-2017-18273	Infinite Loop vulnerability in multiple products In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-22, an infinite loop vulnerability was found in the function ReadTXTImage in coders/txt.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted image file that is mishandled in a GetImageIndexInList call. network low complexity imagemagick debian canonical CWE-835	6.5
2018-05-18	CVE-2017-18271	Infinite Loop vulnerability in multiple products In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-22, an infinite loop vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted MIFF image file. network low complexity imagemagick canonical debian CWE-835	6.5
2018-05-16	CVE-2018-11214	An issue was discovered in libjpeg 9a. network low complexity ijg debian canonical	6.5
2018-05-16	CVE-2018-11213	An issue was discovered in libjpeg 9a. network low complexity ijg debian canonical	6.5
2018-05-16	CVE-2018-11212	Divide By Zero vulnerability in multiple products An issue was discovered in libjpeg 9a and 9d. network low complexity ijg debian canonical netapp oracle redhat opensuse CWE-369	6.5
2018-05-12	CVE-2018-10999	Out-of-bounds Read vulnerability in multiple products An issue was discovered in Exiv2 0.26. network low complexity exiv2 debian canonical CWE-125	6.5
2018-05-12	CVE-2018-10998	An issue was discovered in Exiv2 0.26. network low complexity exiv2 canonical debian redhat	6.5
2018-05-10	CVE-2018-1118	Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. local low complexity linux debian canonical redhat	5.5